[Secure-testing-commits] r15858 - data/CVE

Florian Weimer fw at alioth.debian.org
Fri Jan 14 21:26:00 UTC 2011


Author: fw
Date: 2011-01-14 21:26:00 +0000 (Fri, 14 Jan 2011)
New Revision: 15858

Modified:
   data/CVE/list
Log:
Replace empty descriptions in temporary issues with something meaningful


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-01-14 21:10:04 UTC (rev 15857)
+++ data/CVE/list	2011-01-14 21:26:00 UTC (rev 15858)
@@ -2332,7 +2332,7 @@
 	NOT-FOR-US: phpCheckZ
 CVE-2010-4142 (Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build ...)
 	NOT-FOR-US: DATAC RealWin
-CVE-2010-XXXX
+CVE-2010-XXXX [overwriting of arbitrary file via symlinks]
 	- pithos 0.3.5-1
 CVE-2010-4141
 	RESERVED
@@ -2377,7 +2377,7 @@
 CVE-2010-4121 (** DISPUTED ** The TCP-to-ODBC gateway in IBM Tivoli Provisioning ...)
 	NOT-FOR-US: IBM Tivoli
 CVE-2010-XXXX
-	- weborf 0.12.4-1
+	- weborf 0.12.4-1 (bug #601585)
 CVE-2010-4120 (Multiple cross-site scripting (XSS) vulnerabilities in the TAM console ...)
 	NOT-FOR-US: IBM Tivoli
 CVE-2010-4119
@@ -2535,9 +2535,9 @@
 	RESERVED
 	- glibc <removed>
 	- eglibc <unfixed>
-CVE-2010-XXXX
+CVE-2010-XXXX [XSS vulnerability discovered -plugin-globalsearch]
 	- fusionforge 5.0.2-3
-CVE-2010-XXXX
+CVE-2010-XXXX [insecure usage of temporary files in flash-kernel]
 	- flash-kernel 2.33 (low)
 	[lenny] - flash-kernel <no-dsa> (Minor issue)
 CVE-2010-4050 (Opera before 10.63 allows remote attackers to cause a denial of ...)




More information about the Secure-testing-commits mailing list